OASIS ponders PKI security for Web services

OASIS (Organization for the Advancement of Structured Information Standards) Tuesday announced that it has formed a technical committee to advance PKI (public key infrastructure) adoption for Web services and other applications.

The OASIS PKI Technical Committee, formed within the OASIS PKI Member Section, will serve as a global PKI information resource and increase awareness of digital certificates as an important component for managing access to network resources, delivering secured electronic messages, and conducting electronic transactions, according to OASIS. Deliverables are to include white papers, implementation guidelines, and conformance tests to promote PKI adoption.

The committee will address issues behind deploying digital certificates to meet business and security requirements, focusing on overcoming technical and integration challenges, said Terry Leahy of Wells Fargo, chairman of the new committee, in a prepared statement. The committee will serve as a forum for exchanging information on using PKI and digital certificates in application-focused standards and projects and as mechanisms for creating documents related to PKI internationally, according to Leahy.

PKI's status as a transparent technology integrated into an identity management system will make it a key enabling technology for using Web services and other software technologies in high-trust application environments, according to Ron Moritz, senior vice president of eTrust security solutions at Computer Associates, also in a prepared statement.

Member organizations participating in the effort include Baltimore Technologies PLC, Computer Associates International Inc., Entrust Inc., KPMG Consulting Inc., Neucom, RSA Security Inc., Sun Microsystems Inc., VeriSign Inc., and Wells Fargo & Co.

Participation on the committee is open to all organizations and individuals. An open mail list for public comment and completed work will be available free. Information on joining OASIS can be found here.

Join the newsletter!

Error: Please check your email address.

More about Baltimore TechnologiesCA TechnologiesEntrustKPMGOrganization for the Advancement of Structured Information StandardsRSA, The Security Division of EMCSun MicrosystemsVeriSign AustraliaWells Fargo

Show Comments

Market Place